Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1590
  • Last Modified:

how i can close FTP port in windows XP

hi
 i want to prevent  user from use  FTP port in windows XP how i can do that

thanks
0
nasemabdulla
Asked:
nasemabdulla
1 Solution
 
gidds99Commented:
This MSKB article outlines how to block applications using Windows XP Firewall and TCP/IP filtering:

http://support.microsoft.com/kb/875357

Hope this helps.
0
 
gidds99Commented:
This article should also help with filtering TCP/IP ports to block FTP:

http://homepages.wmich.edu/~mchugha/w2kfirewall.htm
0
 
nasemabdullaAuthor Commented:
hi  gidds99
can i use mmc to do that and how only for FTP

thanks
0
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

 
anil_uCommented:
Use the 1st link provided and block TCP ports 20 and 21 - these are the ports used for FTP
0
 
Jeff BeckhamEngineerCommented:
Are you wanting to block inbound or outbound ftp?

If inbound, the simplest way to block inbound is to remove the FTP service on your computer (if it exists). You'll want to use Windows Firewall to block inbound FTP connections if you for some reason want it running on the computer.

If you're talking about blocking out FTP, you need to perform TCP/IP filtering.  The above link to the wmuch.edu site will provide you with the steps to perform the filtering via configuration of the local system policy.  You can also accomplish it via

Control Panel -> Network Connections -> Local Area Connection -> Properties
Scroll to Internet Protocol (TCP/IP), click Properties button -> Advanced button -> Options tab -> Properties button

You can enable port filtering here, but you need to explicitly define all allowed traffic so that the other stuff gets blocked out.  You'll have to do the same thing with the local system policy as outlined above.

Lastly, you could use some 3rd-part firewall software that will prevent certain executables from running or prevent certain types of outbound traffic  Some examples are:

http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp?dc=12bms&ctry=US&lang=en&lid=nav_za
http://www.digitalriver.com/dr/v2/ec_Main.Entry17C?SID=26412&SP=10023&CID=0&PID=253470&PN=1&V1=253470&CUR=840&DSP=&PGRP=0&ABCODE=&CACHE_ID=0
http://www.symantec.com/home_homeoffice/products/internet_security/npf2006/index.html
0
 
gidds99Commented:
Yes, as anil_u menations above I would also suggest that you follow the process outlined in the 1st link I provided above:

http://support.microsoft.com/kb/875357
0
 
nasemabdullaAuthor Commented:
hi all
thanks for all
0

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now